If implemented correctly in an IT environment, smart cards remove the need for static passwords, thereby removing the Achilles heel that leaves many organisations vulnerable to an APT attack. This is according to Julian Lovelock, Senior Director, ActivIdentity, a global leader in secure identity solutions, part of HID Global. "If you don’t feel that an OTP token solution is enough to cover your enterprise security needs, the next step is to complement it (or maybe even replace it) with a smart card solution. Smart cards don’t require seed files, thereby removing one point of attack," stated Julian Lovelock. "Furthermore, given a detailed use-case study and appropriate workflow implementation, smart cards can even make user’s interaction with IT systems more convenient. And if you add single sign on capabilities and self-help systems you can also improve productivity and overall security awareness, not to mention cutting help desk costs." "But before going about adding all these security features on top of your IT environment, it is important to recognise that if you want your security systems to function and truly deliver value, they have to be considered in their combined entirety and even be integrated if that is possible," continued Julian Lovelock. [...]